Description
An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.
Remediation
References
https://github.com/opengoofy/hippo4j/issues/1059
Related Vulnerabilities
CVE-2022-24697 Vulnerability in maven package org.apache.kylin:kylin-spark-engine
CVE-2016-3506 Vulnerability in maven package com.oracle:ojdbc7
CVE-2022-36921 Vulnerability in maven package org.jenkins-ci.plugins:coverity
CVE-2018-1000174 Vulnerability in maven package org.jenkins-ci.plugins:google-login
CVE-2020-12480 Vulnerability in maven package com.typesafe.play:play_2.11